Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7820 matches found

OSV
OSVadded 2020/01/13 9:38 a.m.11 views

SUSE-SU-2020:0081-1 Security update for crowbar-core, crowbar-openstack, openstack-horizon-plugin-monasca-ui, openstack-monasca-api, openstack-monasca-log-api, openstack-neutron, rubygem-puma, rubygem-rest-client

This update for crowbar-core, crowbar-openstack, openstack-horizon-plugin-monasca-ui, openstack-monasca-api, openstack-monasca-log-api, openstack-neutron, rubygem-puma, rubygem-rest-client contains the following fixes: Security issue fixed for rubygem-puma: - CVE-2019-16770: Fixed a potential...

7.5CVSS6.2AI score0.06457EPSS
Exploits0References12
OSV
OSVadded 2019/12/30 8:15 p.m.11 views

CVE-2012-5474

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

5.5CVSS5.6AI score0.00338EPSS
Exploits1References6
OSV
OSVadded 2019/12/30 8:15 p.m.5 views

DEBIAN-CVE-2012-5474

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

5.5CVSS5.7AI score0.00338EPSS
Exploits1References1
NVD
NVDadded 2019/12/30 8:15 p.m.17 views

CVE-2012-5476

Within the RHOS Essex Preview 2012.2 of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value...

5.5CVSS5.6AI score0.00398EPSS
Exploits0References3
NVD
NVDadded 2019/12/30 8:15 p.m.31 views

CVE-2012-5474

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

5.5CVSS5.5AI score0.00338EPSS
Exploits1References4
Prion
Prionadded 2019/12/30 8:15 p.m.19 views

Design/Logic Flaw

Within the RHOS Essex Preview 2012.2 of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value...

2.1CVSS7.3AI score0.00398EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCveadded 2019/12/30 8:15 p.m.23 views

CVE-2012-5474

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

5.5CVSS6.1AI score0.00338EPSS
Exploits1References1
Prion
Prionadded 2019/12/30 8:15 p.m.20 views

Design/Logic Flaw

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

2.1CVSS7AI score0.00338EPSS
Exploits1References4Affected Software4
UbuntuCve
UbuntuCveadded 2019/12/30 8:15 p.m.37 views

CVE-2012-5476

Within the RHOS Essex Preview 2012.2 of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value...

5.5CVSS6.1AI score0.00398EPSS
Exploits0References2
Cvelist
Cvelistadded 2019/12/30 7:36 p.m.32 views

CVE-2012-5474

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

5.5AI score0.00338EPSS
Exploits1References4
CVE
CVEadded 2019/12/30 7:36 p.m.104 views

CVE-2012-5474

Affected software : Red Hat OpenStack Platform 2.0 and RHOS Essex Release (python-django-horizon package before 2012.1.1). Vulnerability : the file /etc/openstack-dashboard/local_settings is world readable, exposing the secret key value. Impact (as described) : exposure of secret key information;...

5.5CVSS5.5AI score0.00338EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVEadded 2019/12/30 7:36 p.m.19 views

CVE-2012-5474

The file /etc/openstack-dashboard/localsettings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release python-django-horizon package before 2012.1.1 is world readable and exposes the secret key value...

5.5CVSS5.6AI score0.00338EPSS
Exploits1
Cvelist
Cvelistadded 2019/12/30 7:2 p.m.24 views

CVE-2012-5476

Within the RHOS Essex Preview 2012.2 of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value...

5.6AI score0.00398EPSS
Exploits0References3
CVE
CVEadded 2019/12/30 7:2 p.m.74 views

CVE-2012-5476

OpenStack RHOS Essex Preview (2012.2) dashboard package contains a vulnerability where /etc/quantum/quantum.conf is world readable, exposing the admin password and token value. Affected component: OpenStack dashboard configuration on RHOS Essex Preview 2012.2. Root cause: file permissions misconf...

5.5CVSS5.6AI score0.00398EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2019/12/30 7:2 p.m.20 views

CVE-2012-5476

Within the RHOS Essex Preview 2012.2 of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value...

5.5CVSS5.7AI score0.00398EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2019/12/19 7:28 p.m.3 views

openstack-keystone: Credentials API allows non-admin to list and retrieve all users credentials

A disclosure vulnerability was found in openstack-keystone's credentials API. Users with a project role are able to list any credentials with the /v3/credentials API when enforcescope is false. Information for time-based one time passwords TOTP may also be disclosed. Deployments running keystone...

8.8CVSS5.7AI score0.0178EPSS
Exploits1References6
RedHat Linux
RedHat Linuxadded 2019/12/19 7:28 p.m.57 views

Important: Red Hat Security Advisory: openstack-keystone security update

An update for openstack-keystone is now available for Red Hat OpenStack Platform 15 Stein. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.8AI score0.0178EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2019/12/12 1:20 a.m.22 views

CVE-2019-19687

A disclosure vulnerability was found in openstack-keystone's credentials API. Users with a project role are able to list any credentials with the /v3/credentials API when enforcescope is false. Information for time-based one time passwords TOTP may also be disclosed. Deployments running keystone...

8.8CVSS1.5AI score0.0178EPSS
Exploits1References5
NVD
NVDadded 2019/12/10 2:15 p.m.20 views

CVE-2013-1793

openstack-utils openstack-db has insecure password creation...

7.5CVSS7.7AI score0.01026EPSS
Exploits0References2
Prion
Prionadded 2019/12/10 2:15 p.m.20 views

Default credentials

openstack-utils openstack-db has insecure password creation...

5CVSS7.3AI score0.01026EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder